Adobe Reader < 26.001.21431 Multiple Vulnerabilities (APSB26-44)

The version of Adobe Reader installed on the remote Windows host is a version prior to 26.001.21431. It is, therefore, affected by multiple vulnerabilities. - Acrobat Reader versions 26.001.21411, 24.001.30360, 24.001.30362 and earlier are affected by an Improperly Controlled Modification of Obje...

PT-2026-32705

Name of the Vulnerable Software and Affected Versions Acrobat Reader versions prior to 26.001.21412 Description An Improperly Controlled Modification of Object Prototype Attributes, also known as Prototype Pollution a flaw where an attacker can manipulate the prototype of an object to inject...

APSB26-44 : Security update available for Adobe Acrobat Reader

Adobe has released a security update for Adobe Acrobat and Reader for Windows and macOS. This update addresses critical and important vulnerabilities. Successful exploitation could lead to arbitrary code execution and arbitrary file system read...

APSB26-36 : Security update available for Adobe FrameMaker

Adobe has released a security update for Adobe FrameMaker. This update addresses critical and important vulnerabilities that could lead to arbitrary code execution, arbitrary file system read, and memory exposure...

EUVD-2023-32866

Malicious code in bioql PyPI...

EUVD-2024-2094

Malicious code in bioql PyPI...

EUVD-2024-52216

Malicious code in bioql PyPI...

EUVD-2023-42027

Malicious code in bioql PyPI...

EUVD-2023-34964

Malicious code in bioql PyPI...

EUVD-2023-30187

Malicious code in bioql PyPI...

EUVD-2023-26411

Malicious code in bioql PyPI...

EUVD-2023-32867

Malicious code in bioql PyPI...

EUVD-2025-14539

Malicious code in bioql PyPI...

EUVD-2022-45415

Malicious code in bioql PyPI...

CVE-2025-54234 ColdFusion | Server-Side Request Forgery (SSRF) (CWE-918)

ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected by a Server-Side Request Forgery SSRF vulnerability that could lead to limited file system read. A high-privilege authenticated attacker can force the application to make arbitrary requests via injection of arbitrary URLs...

CVE-2025-54254

Adobe Experience Manager versions 6.5.23 and earlier are affected by an Improper Restriction of XML External Entity Reference 'XXE' vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files on the local file system, scope i...

APSB25-82 : Security update available for Adobe AEM Forms

Adobe has released a security update for Adobe Experience Manager Forms on Java Enterprise Edition JEE. This update addresses critical vulnerabilities that could lead to arbitrary code execution and arbitrary file system read...

CVE-2025-49545

ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected by a Server-Side Request Forgery SSRF vulnerability that could lead to arbitrary file system read. A high-privilege authenticated attacker can force the application to make arbitrary requests via injection of URLs. Exploitation...

CVE-2025-49545

ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier are affected by a Server-Side Request Forgery SSRF vulnerability that could lead to arbitrary file system read. A high-privilege authenticated attacker can force the application to make arbitrary requests via injection of URLs. Exploitation...

CVE-2025-49545

Adobe ColdFusion is affected by CVE-2025-49545 (SSRF leading to arbitrary file system read) in versions 2025.2, 2023.14, 2021.20 and earlier. A high-privilege authenticated attacker can force the application to make arbitrary requests by URL injection; exploitation requires no user interaction an...